[go: up one dir, main page]

CN116566702A - A unified user account login and management method and device - Google Patents

A unified user account login and management method and device Download PDF

Info

Publication number
CN116566702A
CN116566702A CN202310585983.9A CN202310585983A CN116566702A CN 116566702 A CN116566702 A CN 116566702A CN 202310585983 A CN202310585983 A CN 202310585983A CN 116566702 A CN116566702 A CN 116566702A
Authority
CN
China
Prior art keywords
user account
login
user
list
module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310585983.9A
Other languages
Chinese (zh)
Inventor
徐小梅
刘宁
彭成权
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangzhou Qirui Information Technology Co ltd
Original Assignee
Guangzhou Qirui Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangzhou Qirui Information Technology Co ltd filed Critical Guangzhou Qirui Information Technology Co ltd
Priority to CN202310585983.9A priority Critical patent/CN116566702A/en
Publication of CN116566702A publication Critical patent/CN116566702A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D10/00Energy efficient computing, e.g. low power processors, power management or thermal management

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

本发明公开了一种统一用户账户登录和管理方法及装置,通过服务器依据用户账号确定该用户账号可登录的关联应用系统列表,将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统,能够保证减少用户反复去匹配的繁琐性,提高用户体验,同时,通过获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限,依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,能够有效防止授权账户被盗或泄露的情况发生,提高安全性。

The invention discloses a unified user account login and management method and device. The server determines the associated application system list that the user account can log in according to the user account, sends the associated application system list to the login device, and the user selects according to the associated application system list. The application system that needs to be logged in can ensure that the cumbersomeness of users' repeated matching is reduced, and the user experience is improved. At the same time, by obtaining the user account operation authority corresponding to the user account in the application system that needs to log in, the corresponding user account operation authority is returned according to the user account operation authority. Log in from the operating website to the login device, which can effectively prevent the authorized account from being stolen or leaked, and improve security.

Description

一种统一用户账户登录和管理方法及装置A unified user account login and management method and device

技术领域technical field

本发明涉及用户账户登录和管理技术领域,尤其涉及一种统一用户账户登录和管理方法及装置。The present invention relates to the technical field of user account login and management, in particular to a unified user account login and management method and device.

背景技术Background technique

随着网络技术的日趋成熟,各类门户网站、社交网站、电商网站如雨后春笋般涌现,为了享受更多的功能和更好的服务,用户往往需要在各个网站上注册相应账户,对于经常穿梭于各大网站的人们,记住自己的用户名和密码成为一项必备技能,如果不能够准确的记住密码,则需要反复去匹配信息,或者是根据指示一步步地找回账户信息,不仅费时,还影响用户体验。With the maturity of network technology, various portal sites, social networking sites, and e-commerce sites have sprung up. In order to enjoy more functions and better services, users often need to register corresponding accounts on various sites. For people on major websites, remembering their user names and passwords has become an essential skill. If they cannot remember the passwords accurately, they need to match the information repeatedly, or retrieve the account information step by step according to the instructions, not only It is time-consuming and affects user experience.

为了帮助用户快速登录,目前许多网站提供自动登陆功能,网站在用户的硬盘上植入cookie,当用户再次访问该网站时,网站可以通过读取cookie获取用户相关信息,不用用户输入ID、密码就可直接登陆,还有一些网站提供了授权登陆功能,即使用授权网站的账户信息就可登陆,无需注册,授权的过程为被授权网站调用授权网站的登陆接口进行身份验证,而调用网站对用户的敏感核心信息是未知的,例如,A、B两个网站,B网站授权给A网站,用户可以用B网站的账户登陆A网站,无需注册新账户。In order to help users log in quickly, many websites currently provide an automatic login function. The website implants a cookie on the user's hard disk. When the user visits the website again, the website can obtain user-related information by reading the cookie, without the user entering the ID or password. You can log in directly, and some websites provide an authorized login function, that is, you can log in with the account information of the authorized website without registration. The sensitive core information is unknown. For example, there are two websites A and B, and website B authorizes website A, and users can log in to website A with the account of website B without registering a new account.

网站读取cookie获取用户信息以达到快速登陆或自动登陆的目的,但这也意味着他人也可使用“被记住的账户信息”进行登陆,多数的账号丢失、登录串号其实都和cookie有关,很多木马都是通过窃取cookie来盗取用户的账号,cookie不是跨浏览器和机器的,当用户更换其他浏览器或计算机登陆时,cookie就发挥不了作用了,授权登陆也存在一定风险,虽然用户不必再记住多个账户和密码,但若授权账户被盗或泄露,则被授权的网站也变得不再安全。The website reads cookies to obtain user information to achieve quick login or automatic login, but this also means that others can also use "remembered account information" to log in. Most of the lost accounts and login serial numbers are actually related to cookies , many Trojan horses steal the user's account by stealing cookies. Cookies are not cross-browser and machine. Users no longer have to remember multiple accounts and passwords, but if the authorized account is stolen or leaked, the authorized website will become no longer safe.

发明内容Contents of the invention

有鉴于此,本发明提出一种统一用户账户登录和管理方法及装置,可以解决现有技术所存在的缺陷。In view of this, the present invention proposes a unified user account login and management method and device, which can solve the defects in the prior art.

本发明的技术方案是这样实现的:Technical scheme of the present invention is realized like this:

一种统一用户账户登录和管理方法,具体包括:A unified user account login and management method, specifically comprising:

用户依据登陆设备输入用户账号向服务器发送登录请求;The user sends a login request to the server by entering the user account according to the login device;

服务器依据用户账号确定该用户账号可登录的关联应用系统列表;The server determines the list of associated application systems that the user account can log in to according to the user account;

将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统;Send the associated application system list to the login device, and the user selects the application system to be logged in according to the associated application system list;

获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限;Obtain the user account operation authority corresponding to the user account in the application system that needs to be logged in;

依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,从而实现统一用户账户的登录和管理。According to the user account operation authority, return the corresponding operation website to the login device to log in, so as to realize the login and management of the unified user account.

作为所述统一用户账户登录和管理方法的进一步可选方案,所述服务器依据用户账号确定该用户账号可登录的关联应用系统列表,具体包括:As a further optional solution of the unified user account login and management method, the server determines a list of associated application systems that the user account can log in to according to the user account, specifically including:

采集用户的人体特征信息和登录设备信息;Collect the user's physical feature information and login device information;

依据人体特征信息和登录设备信息判断是否与用户账号绑定的人体特征信息和登录设备一致,若一致,获取该用户账号可登录的关联应用系统列表,否则,阻止该用户账号获取关联应用系统列表。Judging whether the human body feature information bound to the user account is consistent with the login device based on the body feature information and login device information, if they are consistent, obtain the list of associated application systems that the user account can log in to, otherwise, prevent the user account from obtaining the list of associated application systems .

作为所述统一用户账户登录和管理方法的进一步可选方案,所述获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限,具体包括:As a further optional solution of the unified user account login and management method, the acquisition of the user account operation authority corresponding to the user account in the application system that needs to be logged in specifically includes:

依据人体特征信息和登录设备信息获取该用户账号对应的用户的身份标识;Obtain the identity of the user corresponding to the user account based on the human body feature information and login device information;

依据所述身份标识从本地非关系数据库中匹配所述用户的权限值;matching the authority value of the user from the local non-relational database according to the identity;

依据所述用户的权限值匹配所述用户在需要登陆的应用系统中的可操作权限。Match the user's operable authority in the application system that needs to log in according to the authority value of the user.

作为所述统一用户账户登录和管理方法的进一步可选方案,所述依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,具体包括:As a further optional solution of the unified user account login and management method, the said operation authority of the user account is returned to the corresponding operation website to log in to the login device, specifically including:

将所述用户账号及其对应的用户密码以明文形式填充到所述操作网站的表单,响应于用户触发的登录操作;filling the user account and its corresponding user password into the form of the operating website in plain text, and responding to the login operation triggered by the user;

将所述表单中的用户账户及其对应的用户密码入参到所述操作网站的登录中,向所述操作网站发起登录。Enter the user account in the form and its corresponding user password into the login of the operation website, and initiate a login to the operation website.

一种统一用户账户登录和管理系统,包括:A unified user account login and management system comprising:

发送模块,用于用户依据登陆设备输入用户账号向服务器发送登录请求;The sending module is used for the user to send a login request to the server according to the login device input user account;

确定模块,用于服务器依据用户账号确定该用户账号可登录的关联应用系统列表;The determination module is used for the server to determine the list of associated application systems that the user account can log in according to the user account;

筛选模块,用于将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统;The screening module is used to send the associated application system list to the login device, and the user selects the application system to be logged in according to the associated application system list;

第一获取模块,用于获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限;The first obtaining module is used to obtain the user account operation authority corresponding to the user account in the application system that needs to be logged in;

登录模块,用于依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,从而实现统一用户账户的登录和管理。The login module is used to return the corresponding operation website to the login device for login according to the user account operation authority, so as to realize the login and management of the unified user account.

作为所述统一用户账户登录和管理系统的进一步可选方案,所述确定模块包括:As a further optional solution of the unified user account login and management system, the determining module includes:

采集模块,用于采集用户的人体特征信息和登录设备信息;The collection module is used to collect the user's human body feature information and login device information;

判断模块,用于依据人体特征信息和登录设备信息判断是否与用户账号绑定的人体特征信息和登录设备一致,若一致,获取该用户账号可登录的关联应用系统列表,否则,阻止该用户账号获取关联应用系统列表。The judging module is used to judge whether the human body characteristic information bound to the user account is consistent with the login device according to the human body characteristic information and the login device information, and if they are consistent, obtain a list of associated application systems that the user account can log in to, otherwise, block the user account Get the list of associated application systems.

作为所述统一用户账户登录和管理系统的进一步可选方案,所述第一获取模块包括:As a further optional solution of the unified user account login and management system, the first obtaining module includes:

第二获取模块,用于依据人体特征信息和登录设备信息获取该用户账号对应的用户的身份标识;The second obtaining module is used to obtain the identity of the user corresponding to the user account according to the human body feature information and the login device information;

第一匹配模块,用于依据所述身份标识从本地非关系数据库中匹配所述用户的权限值;A first matching module, configured to match the authority value of the user from a local non-relational database according to the identity;

第二匹配模块,用于依据所述用户的权限值匹配所述用户在需要登陆的应用系统中的可操作权限。The second matching module is configured to match the operable authority of the user in the application system requiring login according to the authority value of the user.

作为所述统一用户账户登录和管理系统的进一步可选方案,所述登录模块包括:As a further optional solution of the unified user account login and management system, the login module includes:

填充模块,用于将所述用户账号及其对应的用户密码以明文形式填充到所述操作网站的表单,响应于用户触发的登录操作;A filling module, configured to fill the user account and its corresponding user password into the form of the operating website in plain text, in response to a login operation triggered by the user;

入参模块,用于将所述表单中的用户账户及其对应的用户密码入参到所述操作网站的登录中,向所述操作网站发起登录。The entry module is used to enter the user account and its corresponding user password in the form into the login of the operation website, and initiate a login to the operation website.

本发明的有益效果是:通过服务器依据用户账号确定该用户账号可登录的关联应用系统列表,将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统,能够保证减少用户反复去匹配的繁琐性,提高用户体验,同时,通过获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限,依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,能够有效防止授权账户被盗或泄露的情况发生,提高安全性。The beneficial effects of the present invention are: the server determines the list of associated application systems that the user account can log in to according to the user account, sends the list of associated application systems to the login device, and the user selects the application system that needs to log in according to the list of associated application systems, which can ensure Reduce the tediousness of repeated matching by users and improve user experience. At the same time, by obtaining the user account operation authority corresponding to the user account in the application system that needs to be logged in, return the corresponding operation website to the login device to log in according to the user account operation authority , can effectively prevent authorized accounts from being stolen or leaked, and improve security.

附图说明Description of drawings

为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention or the prior art, the following will briefly introduce the drawings that need to be used in the description of the embodiments or the prior art. Obviously, the accompanying drawings in the following description are only These are some embodiments of the present invention. Those skilled in the art can also obtain other drawings based on these drawings without creative work.

图1为本发明一种统一用户账户登录和管理方法的流程示意图;FIG. 1 is a schematic flow diagram of a unified user account login and management method according to the present invention;

图2为本发明一种统一用户账户登录和管理系统的组成示意图。FIG. 2 is a schematic composition diagram of a unified user account login and management system according to the present invention.

具体实施方式Detailed ways

下面将对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅是本发明的一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其它实施例,都属于本发明保护的范围。The following will clearly and completely describe the technical solutions in the embodiments of the present invention. Obviously, the described embodiments are only some of the embodiments of the present invention, rather than all the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

参考图1-2,一种统一用户账户登录和管理方法,具体包括:Referring to Figure 1-2, a unified user account login and management method specifically includes:

用户依据登陆设备输入用户账号向服务器发送登录请求;The user sends a login request to the server by entering the user account according to the login device;

服务器依据用户账号确定该用户账号可登录的关联应用系统列表;The server determines the list of associated application systems that the user account can log in to according to the user account;

将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统;Send the associated application system list to the login device, and the user selects the application system to be logged in according to the associated application system list;

获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限;Obtain the user account operation authority corresponding to the user account in the application system that needs to be logged in;

依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,从而实现统一用户账户的登录和管理。According to the user account operation authority, return the corresponding operation website to the login device to log in, so as to realize the login and management of the unified user account.

在本实施例中,通过服务器依据用户账号确定该用户账号可登录的关联应用系统列表,将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统,能够保证减少用户反复去匹配的繁琐性,提高用户体验,同时,通过获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限,依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,能够有效防止授权账户被盗或泄露的情况发生,提高安全性。In this embodiment, the server determines the list of associated application systems that the user account can log in to according to the user account, sends the list of associated application systems to the login device, and the user selects the application system that needs to be logged in according to the list of associated application systems, which can reduce It is cumbersome for users to repeatedly go to match to improve user experience. At the same time, by obtaining the user account operation authority corresponding to the user account in the application system that needs to be logged in, return the corresponding operation website to the login device to log in according to the user account operation authority. It can effectively prevent authorized accounts from being stolen or leaked and improve security.

优选的,所述服务器依据用户账号确定该用户账号可登录的关联应用系统列表,具体包括:Preferably, the server determines the list of associated application systems that the user account can log in according to the user account, specifically including:

采集用户的人体特征信息和登录设备信息;Collect the user's physical feature information and login device information;

依据人体特征信息和登录设备信息判断是否与用户账号绑定的人体特征信息和登录设备一致,若一致,获取该用户账号可登录的关联应用系统列表,否则,阻止该用户账号获取关联应用系统列表。Judging whether the human body feature information bound to the user account is consistent with the login device based on the body feature information and login device information, if they are consistent, obtain the list of associated application systems that the user account can log in to, otherwise, prevent the user account from obtaining the list of associated application systems .

在本实施例中,通过采集用户的人体特征信息和登录设备信息,当人体特征信息和登录设备信息与预设的人体特征信息和登录设备匹配一致时,才能获取该用户账号可登录的关联应用系统列表,能够进一步提高安全性;需要说明的是,所述人体特征信息包括但不限于指纹特征信息和人脸特征信息,这里不做具体限定。In this embodiment, by collecting the user's body feature information and login device information, when the body feature information and login device information match the preset body feature information and login device information, the associated application that the user account can log in can be obtained The system list can further improve security; it should be noted that the human body feature information includes but not limited to fingerprint feature information and face feature information, which are not specifically limited here.

优选的,所述获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限,具体包括:Preferably, the acquiring the user account operation authority corresponding to the user account in the application system that needs to be logged in specifically includes:

依据人体特征信息和登录设备信息获取该用户账号对应的用户的身份标识;Obtain the identity of the user corresponding to the user account based on the human body feature information and login device information;

依据所述身份标识从本地非关系数据库中匹配所述用户的权限值;matching the authority value of the user from the local non-relational database according to the identity;

依据所述用户的权限值匹配所述用户在需要登陆的应用系统中的可操作权限。Match the user's operable authority in the application system that needs to log in according to the authority value of the user.

在本市实施例中,在本地非关系数据库预设身份标识和用户权限值对应表,不同权限值对应用户不同的操作权限,因此,通过用户身份标识,能够准确获取用户的操作权限。In the embodiment of this city, a table corresponding to identity identifiers and user authority values is preset in the local non-relational database, and different authority values correspond to different operation authority of the user. Therefore, the user's operation authority can be accurately obtained through the user identity identifier.

优选的,所述依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,具体包括:Preferably, according to the operation authority of the user account, returning the corresponding operation website to the login device for login, specifically includes:

将所述用户账号及其对应的用户密码以明文形式填充到所述操作网站的表单,响应于用户触发的登录操作;filling the user account and its corresponding user password into the form of the operating website in plain text, and responding to the login operation triggered by the user;

将所述表单中的用户账户及其对应的用户密码入参到所述操作网站的登录中,向所述操作网站发起登录。Enter the user account in the form and its corresponding user password into the login of the operation website, and initiate a login to the operation website.

一种统一用户账户登录和管理系统,包括:A unified user account login and management system comprising:

发送模块,用于用户依据登陆设备输入用户账号向服务器发送登录请求;The sending module is used for the user to send a login request to the server according to the login device input user account;

确定模块,用于服务器依据用户账号确定该用户账号可登录的关联应用系统列表;The determination module is used for the server to determine the list of associated application systems that the user account can log in according to the user account;

筛选模块,用于将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统;The screening module is used to send the associated application system list to the login device, and the user selects the application system to be logged in according to the associated application system list;

第一获取模块,用于获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限;The first obtaining module is used to obtain the user account operation authority corresponding to the user account in the application system that needs to be logged in;

登录模块,用于依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,从而实现统一用户账户的登录和管理。The login module is used to return the corresponding operation website to the login device for login according to the user account operation authority, so as to realize the login and management of the unified user account.

在本实施例中,通过服务器依据用户账号确定该用户账号可登录的关联应用系统列表,将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统,能够保证减少用户反复去匹配的繁琐性,提高用户体验,同时,通过获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限,依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,能够有效防止授权账户被盗或泄露的情况发生,提高安全性。In this embodiment, the server determines the list of associated application systems that the user account can log in to according to the user account, sends the list of associated application systems to the login device, and the user selects the application system that needs to be logged in according to the list of associated application systems, which can reduce It is cumbersome for users to repeatedly go to match to improve user experience. At the same time, by obtaining the user account operation authority corresponding to the user account in the application system that needs to be logged in, return the corresponding operation website to the login device to log in according to the user account operation authority. It can effectively prevent authorized accounts from being stolen or leaked and improve security.

优选的,所述确定模块包括:Preferably, the determination module includes:

采集模块,用于采集用户的人体特征信息和登录设备信息;The collection module is used to collect the user's human body feature information and login device information;

判断模块,用于依据人体特征信息和登录设备信息判断是否与用户账号绑定的人体特征信息和登录设备一致,若一致,获取该用户账号可登录的关联应用系统列表,否则,阻止该用户账号获取关联应用系统列表。The judging module is used to judge whether the human body characteristic information bound to the user account is consistent with the login device according to the human body characteristic information and the login device information, and if they are consistent, obtain a list of associated application systems that the user account can log in to, otherwise, block the user account Get the list of associated application systems.

在本实施例中,通过采集用户的人体特征信息和登录设备信息,当人体特征信息和登录设备信息与预设的人体特征信息和登录设备匹配一致时,才能获取该用户账号可登录的关联应用系统列表,能够进一步提高安全性;需要说明的是,所述人体特征信息包括但不限于指纹特征信息和人脸特征信息,这里不做具体限定。In this embodiment, by collecting the user's body feature information and login device information, when the body feature information and login device information match the preset body feature information and login device information, the associated application that the user account can log in can be obtained The system list can further improve security; it should be noted that the human body feature information includes but not limited to fingerprint feature information and face feature information, which are not specifically limited here.

优选的,所述第一获取模块包括:Preferably, the first acquisition module includes:

第二获取模块,用于依据人体特征信息和登录设备信息获取该用户账号对应的用户的身份标识;The second obtaining module is used to obtain the identity of the user corresponding to the user account according to the human body feature information and the login device information;

第一匹配模块,用于依据所述身份标识从本地非关系数据库中匹配所述用户的权限值;A first matching module, configured to match the authority value of the user from a local non-relational database according to the identity;

第二匹配模块,用于依据所述用户的权限值匹配所述用户在需要登陆的应用系统中的可操作权限。The second matching module is configured to match the operable authority of the user in the application system requiring login according to the authority value of the user.

在本市实施例中,在本地非关系数据库预设身份标识和用户权限值对应表,不同权限值对应用户不同的操作权限,因此,通过用户身份标识,能够准确获取用户的操作权限。In the embodiment of this city, a table corresponding to identity identifiers and user authority values is preset in the local non-relational database, and different authority values correspond to different operation authority of the user. Therefore, the user's operation authority can be accurately obtained through the user identity identifier.

优选的,所述登录模块包括:Preferably, the login module includes:

填充模块,用于将所述用户账号及其对应的用户密码以明文形式填充到所述操作网站的表单,响应于用户触发的登录操作;A filling module, configured to fill the user account and its corresponding user password into the form of the operating website in plain text, in response to a login operation triggered by the user;

入参模块,用于将所述表单中的用户账户及其对应的用户密码入参到所述操作网站的登录中,向所述操作网站发起登录。The entry module is used to enter the user account and its corresponding user password in the form into the login of the operation website, and initiate a login to the operation website.

以上所述仅为本发明的较佳实施方式而已,并不用以限制本发明,凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above description is only a preferred embodiment of the present invention, and is not intended to limit the present invention. Any modifications, equivalent replacements, improvements, etc. made within the spirit and principles of the present invention shall be included in the scope of the present invention. within the scope of protection.

Claims (8)

1.一种统一用户账户登录和管理方法,其特征在于,具体包括:1. A unified user account login and management method, characterized in that, specifically comprising: 用户依据登陆设备输入用户账号向服务器发送登录请求;The user sends a login request to the server by entering the user account according to the login device; 服务器依据用户账号确定该用户账号可登录的关联应用系统列表;The server determines the list of associated application systems that the user account can log in to according to the user account; 将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统;Send the associated application system list to the login device, and the user selects the application system to be logged in according to the associated application system list; 获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限;Obtain the user account operation authority corresponding to the user account in the application system that needs to be logged in; 依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,从而实现统一用户账户的登录和管理。According to the user account operation authority, return the corresponding operation website to the login device to log in, so as to realize the login and management of the unified user account. 2.根据权利要求1所述的一种统一用户账户登录和管理方法,其特征在于,所述服务器依据用户账号确定该用户账号可登录的关联应用系统列表,具体包括:2. A unified user account login and management method according to claim 1, wherein the server determines a list of associated application systems that the user account can log in to according to the user account, specifically comprising: 采集用户的人体特征信息和登录设备信息;Collect the user's physical feature information and login device information; 依据人体特征信息和登录设备信息判断是否与用户账号绑定的人体特征信息和登录设备一致,若一致,获取该用户账号可登录的关联应用系统列表,否则,阻止该用户账号获取关联应用系统列表。Judging whether the human body feature information bound to the user account is consistent with the login device based on the body feature information and login device information, if they are consistent, obtain the list of associated application systems that the user account can log in to, otherwise, prevent the user account from obtaining the list of associated application systems . 3.根据权利要求2所述的一种统一用户账户登录和管理方法,其特征在于,所述获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限,具体包括:3. A unified user account login and management method according to claim 2, characterized in that said obtaining the user account operation authority corresponding to the user account in the application system that needs to be logged in specifically includes: 依据人体特征信息和登录设备信息获取该用户账号对应的用户的身份标识;Obtain the identity of the user corresponding to the user account based on the human body feature information and login device information; 依据所述身份标识从本地非关系数据库中匹配所述用户的权限值;matching the authority value of the user from the local non-relational database according to the identity; 依据所述用户的权限值匹配所述用户在需要登陆的应用系统中的可操作权限。Match the user's operable authority in the application system that needs to log in according to the authority value of the user. 4.根据权利要求3所述的一种统一用户账户登录和管理方法,其特征在于,所述依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,具体包括:4. A unified user account login and management method according to claim 3, characterized in that, returning the corresponding operation website to the login device to log in according to the user account operation authority, specifically includes: 将所述用户账号及其对应的用户密码以明文形式填充到所述操作网站的表单,响应于用户触发的登录操作;filling the user account and its corresponding user password into the form of the operating website in plain text, and responding to the login operation triggered by the user; 将所述表单中的用户账户及其对应的用户密码入参到所述操作网站的登录中,向所述操作网站发起登录。Enter the user account in the form and its corresponding user password into the login of the operation website, and initiate a login to the operation website. 5.一种统一用户账户登录和管理系统,其特征在于,包括:5. A unified user account login and management system, characterized in that, comprising: 发送模块,用于用户依据登陆设备输入用户账号向服务器发送登录请求;The sending module is used for the user to send a login request to the server according to the login device input user account; 确定模块,用于服务器依据用户账号确定该用户账号可登录的关联应用系统列表;The determination module is used for the server to determine the list of associated application systems that the user account can log in according to the user account; 筛选模块,用于将关联应用系统列表发送至登陆设备,用户依据关联应用系统列表选择出需要登陆的应用系统;The screening module is used to send the associated application system list to the login device, and the user selects the application system to be logged in according to the associated application system list; 第一获取模块,用于获取用户账号在需要登陆的应用系统中相对应的用户账号操作权限;The first obtaining module is used to obtain the user account operation authority corresponding to the user account in the application system that needs to be logged in; 登录模块,用于依据用户账号操作权限返回相应的操作网站至登录设备中进行登录,从而实现统一用户账户的登录和管理。The login module is used to return the corresponding operation website to the login device for login according to the user account operation authority, so as to realize the login and management of the unified user account. 6.根据权利要求4所述的一种统一用户账户登录和管理系统,其特征在于,所述确定模块包括:6. A unified user account login and management system according to claim 4, wherein the determination module comprises: 采集模块,用于采集用户的人体特征信息和登录设备信息;The collection module is used to collect the user's human body feature information and login device information; 判断模块,用于依据人体特征信息和登录设备信息判断是否与用户账号绑定的人体特征信息和登录设备一致,若一致,获取该用户账号可登录的关联应用系统列表,否则,阻止该用户账号获取关联应用系统列表。The judging module is used to judge whether the human body characteristic information bound to the user account is consistent with the login device according to the human body characteristic information and the login device information, and if they are consistent, obtain a list of associated application systems that the user account can log in to, otherwise, block the user account Get the list of associated application systems. 7.根据权利要求6所述的一种统一用户账户登录和管理系统,其特征在于,所述第一获取模块包括:7. A unified user account login and management system according to claim 6, wherein the first acquisition module comprises: 第二获取模块,用于依据人体特征信息和登录设备信息获取该用户账号对应的用户的身份标识;The second obtaining module is used to obtain the identity of the user corresponding to the user account according to the human body feature information and the login device information; 第一匹配模块,用于依据所述身份标识从本地非关系数据库中匹配所述用户的权限值;A first matching module, configured to match the authority value of the user from a local non-relational database according to the identity; 第二匹配模块,用于依据所述用户的权限值匹配所述用户在需要登陆的应用系统中的可操作权限。The second matching module is configured to match the operable authority of the user in the application system requiring login according to the authority value of the user. 8.根据权利要求7所述的一种统一用户账户登录和管理系统,其特征在于,所述登录模块包括:8. A unified user account login and management system according to claim 7, wherein the login module includes: 填充模块,用于将所述用户账号及其对应的用户密码以明文形式填充到所述操作网站的表单,响应于用户触发的登录操作;A filling module, configured to fill the user account and its corresponding user password into the form of the operating website in plain text, in response to a login operation triggered by the user; 入参模块,用于将所述表单中的用户账户及其对应的用户密码入参到所述操作网站的登录中,向所述操作网站发起登录。The entry module is used to enter the user account and its corresponding user password in the form into the login of the operation website, and initiate a login to the operation website.
CN202310585983.9A 2023-05-23 2023-05-23 A unified user account login and management method and device Pending CN116566702A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310585983.9A CN116566702A (en) 2023-05-23 2023-05-23 A unified user account login and management method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310585983.9A CN116566702A (en) 2023-05-23 2023-05-23 A unified user account login and management method and device

Publications (1)

Publication Number Publication Date
CN116566702A true CN116566702A (en) 2023-08-08

Family

ID=87491403

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310585983.9A Pending CN116566702A (en) 2023-05-23 2023-05-23 A unified user account login and management method and device

Country Status (1)

Country Link
CN (1) CN116566702A (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105376192A (en) * 2014-07-02 2016-03-02 阿里巴巴集团控股有限公司 Prompting method and prompting device for logging-on account number
WO2018023601A1 (en) * 2016-08-04 2018-02-08 薄冰 Method for matching website account number according to fingerprint, and login system
CN110324344A (en) * 2019-07-05 2019-10-11 秒针信息技术有限公司 The method and device of account information certification
CN112651011A (en) * 2020-12-24 2021-04-13 深圳竹云科技有限公司 Login verification method, device and equipment for operation and maintenance system and computer storage medium
CN112836198A (en) * 2021-01-22 2021-05-25 北京达佳互联信息技术有限公司 Account login method, device, server, electronic device and storage medium

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105376192A (en) * 2014-07-02 2016-03-02 阿里巴巴集团控股有限公司 Prompting method and prompting device for logging-on account number
WO2018023601A1 (en) * 2016-08-04 2018-02-08 薄冰 Method for matching website account number according to fingerprint, and login system
CN110324344A (en) * 2019-07-05 2019-10-11 秒针信息技术有限公司 The method and device of account information certification
CN112651011A (en) * 2020-12-24 2021-04-13 深圳竹云科技有限公司 Login verification method, device and equipment for operation and maintenance system and computer storage medium
CN112836198A (en) * 2021-01-22 2021-05-25 北京达佳互联信息技术有限公司 Account login method, device, server, electronic device and storage medium

Similar Documents

Publication Publication Date Title
US11178134B2 (en) Method and apparatus for allocating device identifiers
US10880290B2 (en) Comprehensive authentication and identity system and method
CN103023918B (en) The mthods, systems and devices logged in are provided for multiple network services are unified
KR101589192B1 (en) Identity authentication and management device and method thereof
JP4579546B2 (en) Method and apparatus for handling user identifier in single sign-on service
DK3011713T3 (en) PROCEDURE AND SYSTEM FOR PROTECTION AGAINST IDENTI THEFT OR REPLICATION ABUSE
CN103795731B (en) A kind of user account login method
US20130247142A1 (en) Authentication federation system and id provider device
KR101808988B1 (en) System and method for user authentication using mobile number and personal information
CN102932414A (en) Method and system for combining address book and social network
CN103023893A (en) Accessing online resources using a resource transfer platform
US11165768B2 (en) Technique for connecting to a service
CN103840944A (en) Short message authentication method, server and system
CN109817347A (en) Inline diagnosis platform, its right management method and Rights Management System
WO2017220636A1 (en) Password generation device and password verification device
CN104426861B (en) Page detection method and system
CN103124260B (en) The login method of a kind of Web page and device
CN110968632B (en) Method and system for unified data exchange
CN105827597A (en) Method for managing internet account number and password
CN116566702A (en) A unified user account login and management method and device
Berbecaru et al. On the design, implementation and integration of an Attribute Provider in the Pan-European eID infrastructure
CN114915500A (en) Self-media account management method and device based on PC desktop client
KR100862134B1 (en) Identity verification system and method using online
CN102546636A (en) Protected resource monitoring method and device
KR20180020977A (en) Message delivery and evaluation system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20230808